A survey of security concepts for common operating environments

Joseph Loyall, Kurt Rohloff, Partha Pal, Michael Atighetchi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Scopus citations

Abstract

As newer software engineering technologies, such as Service-Oriented Architecture (SOA), become the basis for mission-critical systems, they must include security as a foundational capability. This paper highlights security concepts relevant to using SOA as a foundation for a Common Operating Environment (COE), i.e., a set of infrastructure and common services for developing and executing applications across multiple platforms. We present and motivate security needs, tradeoffs, and solutions in the various layers of a SOA-based COE, including 1) the network, 2) computational platforms, and 3) the common software infrastructure consisting of a SOA stack, common services, and applications. We also discuss cross cutting aspects of security such as survivability, transparency, flexibility, specificity, reuse, and assurance. We then explore security standards and requirements for mission-critical systems developed on top of a SOA-based COE and security technologies that are candidates for satisfying the requirements. The paper closes with a set of recommendations and steps forward for both research into and implementation of security in a SOA-based COE.

Original languageEnglish (US)
Title of host publicationProceedings - 2011 14th IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing Workshops, ISORCW 2011
Pages244-253
Number of pages10
DOIs
StatePublished - Jun 9 2011
Externally publishedYes
Event2011 14th IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing Workshops, ISORCW 2011 - Newport Beach, CA, United States
Duration: Mar 28 2011Mar 31 2011

Publication series

NameProceedings - 2011 14th IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing Workshops, ISORCW 2011

Other

Other2011 14th IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing Workshops, ISORCW 2011
CountryUnited States
CityNewport Beach, CA
Period3/28/113/31/11

All Science Journal Classification (ASJC) codes

  • Artificial Intelligence
  • Computational Theory and Mathematics
  • Computer Science Applications

Keywords

  • Adaptive Survivability
  • Cross Domain
  • Multi-Level Security
  • Service-Oriented Architecture

Fingerprint Dive into the research topics of 'A survey of security concepts for common operating environments'. Together they form a unique fingerprint.

Cite this